Cisco.WebEx.NRP.ARF.Memory.Corruption

description-logoDescription

This indicates the detection of an attack attempt against a Memory Corruption vulnerability in Cisco Webex Network Recording Player.
The vulnerability exists because the affected software improperly validates Advanced Recording Format (ARF) files. A successful exploit could allow the attacker to execute arbitrary code on the affected system.

affected-products-logoAffected Products

All Webex Network Recording Player and Webex Player versions prior to Version WBS31.23
All Webex Network Recording Player and Webex Player versions prior to Version WBS32.15.20
All Webex Network Recording Player and Webex Player versions prior to Version WBS33.4

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-webex-rce

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-11-01 13.483 Default_action:pass:drop
2018-10-04 13.464